Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mhz91 vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2008-6064
Multiple SQL injection vulnerabilities in DomPHP 0.81 allow remote malicious users to execute arbitrary SQL commands via the cat parameter to agenda/index.php, and unspecified other vectors.
Domphp Domphp 0.81
1 EDB exploit
755
VMScore
CVE-2008-1313
Multiple SQL injection vulnerabilities in index.php in Bloo 1.00 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) post_id, (2) post_category_id, (3) post_year_month, and (4) static_page_id parameters; and unspecified other vectors.
Bill Roberts Bloo
1 EDB exploit
755
VMScore
CVE-2008-0818
Multiple directory traversal vulnerabilities in freePHPgallery 0.6 allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the lang cookie to (1) comment.php, (2) index.php, and (3) show.php.
Freephpgallery Freephpgallery 0.6
1 EDB exploit
755
VMScore
CVE-2008-0803
Multiple PHP remote file inclusion vulnerabilities in LookStrike Lan Manager 0.9 allow remote malicious users to execute arbitrary PHP code via a URL in the sys_conf[path][real] parameter to (1) modules\class\Table.php; (2) db_admins.php, (3) db_alert.php, (4) db_double.php, (5) ...
Lookstrike Lan Manager 0.9
1 EDB exploit
755
VMScore
CVE-2007-6639
SQL injection vulnerability in index.php in IPTBB 0.5.4 and previous versions allows remote malicious users to execute arbitrary SQL commands via the id parameter in a viewdir action.
Iptbb Team Iptbb 0.5.4
1 EDB exploit
755
VMScore
CVE-2007-6576
Multiple SQL injection vulnerabilities in Adult Script 1.6.5 and previous versions allow remote malicious users to execute arbitrary SQL commands via the id parameter to (1) videolink_count.php or (2) links.php.
Adultscript Adultscript
1 EDB exploit
755
VMScore
CVE-2007-6579
Multiple SQL injection vulnerabilities in Ip Reg 0.3 allow remote malicious users to execute arbitrary SQL commands via the vlan_id parameter to (1) vlanview.php, (2) vlanedit.php, and (3) vlandel.php; the (4) assetclassgroup_id parameter to assetclassgroupview.php; the (5) subne...
Ip Reg Ip Reg 0.3
1 EDB exploit
755
VMScore
CVE-2007-6551
SQL injection vulnerability in showMsg.php in MailMachine Pro 2.2.4, and other versions prior to 2.2.6, allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Mailmachinepro Mailmachine Pro 1.0
Mailmachinepro Mailmachine Pro 2.1
Mailmachinepro Mailmachine Pro 2.0
Mailmachinepro Mailmachine Pro
Mailmachinepro Mailmachine Pro 2.2.4
1 EDB exploit
755
VMScore
CVE-2007-6557
Multiple SQL injection vulnerabilities in MeGaCheatZ 1.1 allow remote malicious users to execute arbitrary SQL commands via the ItemID parameter to (1) comments.php, (2) view.php, (3) siteadmin/ViewItem.php, and unspecified other vectors.
Megacheatz Megacheatz 1.1
1 EDB exploit
755
VMScore
CVE-2007-6489
Multiple cross-site scripting (XSS) vulnerabilities in Falcon Series One CMS 1.4.3 allow remote malicious users to inject arbitrary web script or HTML via the (1) gb_mail, (2) gb_name, and (3) gb_text parameters in a guestbook action to index.php, and unspecified other vectors.
Falcon Series One Cms 1.4.3
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »